Topic: mitre-attack Goto Github

👇 Here are 201 public repositories matching this topic...

a-poc / redteam-tools
mitre-attack,Tools and Techniques for Red Team / Penetration Testing
User: a-poc
cheatsheet cybersecurity hacking penetration-testing red-team security-tools linux resources tools windows

atc-project / atc-react
mitre-attack,A knowledge base of actionable Incident Response techniques
Organization: atc-project
incident-response response-playbooks dfir thehive mitre-attack amitt

atc-project / atomic-threat-coverage
mitre-attack,Actionable analytics designed to combat threats
Organization: atc-project
mitre-attack threat-model threathunting incidentresponse threatintelligence threatdetection

austinsonger / incident-playbook
mitre-attack,GOAL: Incident Response Playbooks Mapped to MITRE Attack Tactics and Techniques. [Contributors Friendly]
User: austinsonger
cybersecurity playbook cybersecurity-playbook incident-response incident-management incidents mitre-attack mitre contributions-welcome contributors-welcome

bfuzzy / auditd-attack
mitre-attack,A Linux Auditd rule set mapped to MITRE's Attack Framework
User: bfuzzy
auditd attack-detection mitre-attack threat-hunting linux

blackbotsecurity / atomic-red-team-intelligence-c2
mitre-attack,ARTi-C2 is a post-exploitation framework used to execute Atomic Red Team test cases with rapid payload deployment and execution capabilities via .NET's DLR.
Organization: blackbotsecurity
Home Page: https://blackbot.io
redteam dotnet csharp python3 red-teams offensive-security post-exploitation mitre-attack powershell-scripts purpleteam

center-for-threat-informed-defense / adversary_emulation_library
mitre-attack,An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.
Organization: center-for-threat-informed-defense
Home Page: https://ctid.io/adversary-emulation
ctid cybersecurity threat-informed-defense mitre-attack red-team cyber-threat-intelligence adversary-emulation adversary-emulation-plans

center-for-threat-informed-defense / attack-control-framework-mappings
mitre-attack,🚨ATTENTION🚨 The NIST 800-53 mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept here as an archive.
Organization: center-for-threat-informed-defense
Home Page: https://center-for-threat-informed-defense.github.io/mappings-explorer/external/nist/
cti cyber-threat-intelligence mitre-attack cybersecurity nist800-53 security-controls ctid threat-informed-defense risk-management

center-for-threat-informed-defense / attack-flow
mitre-attack,Attack Flow helps executives, SOC managers, and defenders easily understand how attackers compose ATT&CK techniques into attacks by developing a representation of attack flows, modeling attack flows for a small corpus of incidents, and creating visualization tools to display attack flows.
Organization: center-for-threat-informed-defense
Home Page: https://ctid.io/attack-flow
cybersecurity ctid mitre-attack cyber-threat-intelligence threat-informed-defense

center-for-threat-informed-defense / attack_to_cve
mitre-attack,🚨ATTENTION🚨 The CVE mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept here as an archive.
Organization: center-for-threat-informed-defense
Home Page: https://center-for-threat-informed-defense.github.io/mappings-explorer/external/cve/
cybersecurity cve ctid mitre-attack threat-informed-defense

center-for-threat-informed-defense / cti-blueprints
mitre-attack,CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable reports more consistently and efficiently.
Organization: center-for-threat-informed-defense
Home Page: https://ctid.io/cti-blueprints
ctid cyber-threat-intelligence cybersecurity incident-response malware-analysis mitre-attack threat-actors threat-informed-defense

center-for-threat-informed-defense / insider-threat-ttp-kb
mitre-attack,The principal objective of this project is to develop a knowledge base of the tactics, techniques, and procedures (TTPs) used by insiders in the IT environment. It will establish an Insider Threat TTP Knowledge Base, built upon data collected on insider threat incidents and lessons learned and experience from the ATT&CK knowledge base.
Organization: center-for-threat-informed-defense
Home Page: https://ctid.io/insider-threat
cybersecurity ctid mitre-attack cyber-threat-intelligence insider-threat threat-informed-defense

center-for-threat-informed-defense / security-stack-mappings
mitre-attack,🚨ATTENTION🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept here as an archive.
Organization: center-for-threat-informed-defense
Home Page: https://center-for-threat-informed-defense.github.io/mappings-explorer/
mitre-attack cloud aws azure security gcp

center-for-threat-informed-defense / tram
mitre-attack,TRAM is an open-source platform designed to advance research into automating the mapping of cyber threat intelligence reports to MITRE ATT&CK®.
Organization: center-for-threat-informed-defense
Home Page: https://ctid.mitre-engenuity.org/our-work/tram/
ctid cyber-threat-intelligence threat-informed-defense mitre-attack cybersecurity

cyb3rxp / awesome-soc
mitre-attack,A collection of sources of documentation, as well as field best practices, to build/run a SOC
User: cyb3rxp
cert csirt detection soc siem sirp soa soar tip architecture

datadog / kubehound
mitre-attack,Kubernetes Attack Graph
Organization: datadog
Home Page: https://kubehound.io
adversary-emulation attack-graph attack-paths cloud-native-security exploit kubernetes kubernetes-security mitre-attack purple-team red-team

datadog / stratus-red-team
mitre-attack,:cloud: :zap: Granular, Actionable Adversary Emulation for the Cloud
Organization: datadog
Home Page: https://stratus-red-team.cloud
aws adversary-emulation purple-team mitre-attack cloud-security cloud-native-security detection-engineering threat-detection security aws-security

elemental-attack / elemental
mitre-attack,Elemental - An ATT&CK Threat Library
Organization: elemental-attack
sigma-rules mitre-attack atomicredteam attack-defense attack-detection threat-intelligence

ion28 / bluespawn
mitre-attack,An Active Defense and EDR software to empower Blue Teams
User: ion28
active-defense windows security security-tools blue-team mitre-attack anti-virus edr threat-hunting

kac89 / vulnrepo
mitre-attack,VULNRΞPO - Free vulnerability report generator and repository, end-to-end encrypted! Templates of issues, CWE, CVE, MITRE ATT&CK, PCI DSS, issues import Nmap/Nessus/Burp/OpenVAS/Bugcrowd/Trivy, Jira export, TXT/JSON/MARKDOWN/HTML/PDF report, attachments, automatic changelog, statistics, vulnerability management, bug bounty, methodologies and more!!
User: kac89
Home Page: https://vulnrepo.com
pentesting security-team vulnerability-management bugbounty security-tool vulnerability-research vulnerability-report end-to-end-encryption mitre-attack nmap

kirtar22 / litmus_test
mitre-attack,Detecting ATT&CK techniques & tactics for Linux
User: kirtar22
mitre-attack threathunting linux-hunting incident-response security-operations defensive-security blue-team red-team

kubescape / kubescape
mitre-attack,Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security, compliance, and misconfiguration scanning, saving Kubernetes users and administrators precious time, effort, and resources.
Organization: kubescape
Home Page: https://kubescape.io
best-practice devops kubernetes mitre-attack nsa security vulnerability-detection

mdecrevoisier / evtx-to-mitre-attack
mitre-attack,Set of EVTX samples (>270) mapped to MITRE ATT&CK tactic and techniques to measure your SIEM coverage or developed new use cases.
User: mdecrevoisier
mitre-attack siem evtx threat-hunting redteam

mdecrevoisier / sigma-detection-rules
mitre-attack,Set of SIGMA rules (>320) mapped to MITRE ATT&CK tactic and techniques
User: mdecrevoisier
sigma windows mitre-attack threat-hunting powershell

mikeroyal / digital-forensics-guide
mitre-attack,Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics.
User: mikeroyal
digitalforensics digitalforensicreadiness forensics security forensics-tools digital-forensics threat-intelligence intrusion-detection mitre-attack detection-engineering

mikeroyal / open-source-security-guide
mitre-attack,Open Source Security Guide. Learn all about Security Standards (FIPS, CIS, FedRAMP, FISMA, etc.), Frameworks, Threat Models, Encryption, and Benchmarks.
User: mikeroyal
vulnerabilities vulnerability-detection privacy-protection pentesters network-analysis intrusion-detection infosec incident-management mitre-attack detection-engineering

misp / misp-maltego
mitre-attack,Set of Maltego transforms to inferface with a MISP Threat Sharing instance, and also to explore the whole MITRE ATT&CK dataset.
Organization: misp
misp maltego misp-maltego attack mitre-attack transform pivoting visualisation graph analysis

mitre-attack / attack-navigator
mitre-attack,Web app that provides basic navigation and annotation of ATT&CK matrices
Organization: mitre-attack
Home Page: https://mitre-attack.github.io/attack-navigator
cti cyber-threat-intelligence mitre-attack mitre-corporation cybersecurity

mitre-attack / attack-scripts
mitre-attack,Scripts and a (future) library to improve users' interactions with the ATT&CK content
Organization: mitre-attack
cybersecurity cyber-threat-intelligence mitre-corporation cti mitre-attack python

mitre-attack / attack-website
mitre-attack,MITRE ATT&CK Website
Organization: mitre-attack
Home Page: https://attack.mitre.org
cybersecurity mitre-corporation cyber-threat-intelligence mitre-attack cti

mitre-attack / mitreattack-python
mitre-attack,A python module for working with ATT&CK
Organization: mitre-attack
Home Page: https://mitreattack-python.readthedocs.io/
cybersecurity cyber-threat-intelligence mitre-corporation cti mitre-attack python

mitre / caldera
mitre-attack,Automated Adversary Emulation Platform
Organization: mitre
Home Page: https://caldera.mitre.org
adversary-emulation caldera security-automation red-team mitre mitre-attack security-testing mitre-corporation cybersecurity hacking

mitre / caldera-ot
mitre-attack,MITRE Caldera™ for OT Plugins & Capabilities
Organization: mitre
Home Page: https://caldera.mitre.org/
adversary-emulation bacnet caldera cybersecurity dnp3 mitre mitre-attack mitre-corporation modbus operational-technology

mthcht / purpleteam
mitre-attack,Purpleteam scripts simulation & Detection - trigger events for SOC detections
User: mthcht
blueteam detection linux mitre-attack offensive-scripts purpleteam redteam security siem simulation soc tactics techniques windows awesome awesome-list ioc threat-hunting threathunting detection-engineering

n0dec / malwless
mitre-attack,Test Blue Team detections without running any attack.
User: n0dec
blueteam dfir mitre-attack sysmon siem redteam powershell hacktoberfest

netevert / sentinel-attack
mitre-attack,Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK
User: netevert
siem threat-hunting azure-sentinel mitre-attack sysmon sysmon-config azure blue-team cybersecurity logging

nshalabi / attack-tools
mitre-attack,Utilities for MITRE™ ATT&CK
User: nshalabi
mitre-attack mitre adversary-emulation redteaming redteam

olafhartong / attackdatamap
mitre-attack,A datasource assessment on an event level to show potential coverage or the MITRE ATT&CK framework
User: olafhartong
dfir mitre-attack threat-hunting threat-detection siem

olafhartong / sysmon-modular
mitre-attack,A repository of sysmon configuration modules
User: olafhartong
sysmon dfir threat-hunting mitre-attack modular security-tools

olafhartong / threathunting
mitre-attack,A Splunk app mapped to MITRE ATT&CK to guide your threat hunts
User: olafhartong
splunk mitre-attack threat-hunting dfir

opencti-platform / connectors
mitre-attack,OpenCTI Connectors
Organization: opencti-platform
Home Page: https://www.opencti.io
cybersecurity cti threat-intelligence misp mitre-attack

password-reset / invoke-apex
mitre-attack,A PowerShell-based toolkit and framework consisting of a collection of techniques and tradecraft for use in red team, post-exploitation, adversary simulation, or other offensive security tasks.
User: password-reset
adversary-emulation mitre-attack offensive-security pentesting powershell redteam

redcanaryco / atomic-red-team
mitre-attack,Small and highly portable detection tests based on MITRE's ATT&CK.
Organization: redcanaryco
mitre mitre-attack

redcanaryco / chain-reactor
mitre-attack,Chain Reactor is an open source framework for composing executables that simulate adversary behaviors and techniques on Linux endpoints.
Organization: redcanaryco
linux mitre mitre-attack adversary-simulation elf security security-testing

sbousseaden / evtx-attack-samples
mitre-attack,Windows Events Attack Samples
User: sbousseaden
Home Page: https://github.com/sbousseaden/EVTX-ATTACK-SAMPLES
threat-hunting evtx windows-security mitre-attack detection-engineering dataset winlogbeat dfir

sbousseaden / macos-attack-dataset
mitre-attack,JSON DataSet for macOS mapped to MITRE ATT&CK Tactics.
User: sbousseaden
threat-hunting macos detection mitre-attack blueteam elastic

sbousseaden / pcap-attack
mitre-attack,PCAP Samples for Different Post Exploitation Techniques
User: sbousseaden
threat-hunting pcap-files pcapng detection mitre-attack

shuffle / shuffle
mitre-attack,Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing.
Organization: shuffle
Home Page: https://shuffler.io
automation cybersecurity openapi shuffle security workflow-editor integrations mitre-attack agplv3 discord

th3xace / edr-test
mitre-attack,Automating EDR Testing with reference to MITRE ATTACK via Cobalt Strike [Purple Team].
User: th3xace
aggressor-scripts cobalt-strike cobaltstrike edr purple-team purpleteam mitre-attack

walidshaari / certified-kubernetes-security-specialist
mitre-attack,Curated resources help you prepare for the CNCF/Linux Foundation CKS 2021 "Kubernetes Certified Security Specialist" Certification exam. Please provide feedback or requests by raising issues, or making a pull request. All feedback for improvements are welcome. thank you.
User: walidshaari
kubernetes-security kubernetes cks ckss kernel-hardening exam-objectives os-footprint security seccomp apparmor